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Rosario Gennaro, Yael Gertner, Jonathan Katz 

June 2003 Proceedings of the thirty-fifth annual ACM symposium on Theory of 

computing 
Publisher: ACM Press 

Full text available: ^ pdf(236.93 KB) Additional Information: full citation, abstract, references, index terms 

A central focus of modern cryptography is to investigate the weakest possible 
assumptions under which various cryptographic algorithms exist. Typically, a proof that a 
"weak" primitive (e.g., a one-way function) implies the existence of a "strong" algorithm 
(e.g., a private-key encryption scheme) proceeds by giving an explicit construction of the 
latter from the former. In addition to showing the existence of such a construction, an 
equally important research direction is to explore the < ... 



Keywords: black-box, digital signatures, encryption, lower bounds 



2 Cryptosystems: Securely combining public-key cryptosystems H 
g^i Stuart Haber, Benny Pinkas 

^ November 2001 Proceedings of the 8th ACM conference on Computer and 
Communications Security 
Publisher: ACM Press 

Full text available- « od«415 51 KB) Additional Information: MsMQSL abstract, referees, citings, index 
' m terms 

It is a maxim of sound computer-security practice that a cryptographic key should have 
only a single use. For example, an RSA key pair should be used only for public-key 
encryption or only for digital signatures, and not for both.In this paper we show that in 
many cases, the simultaneous use of related keys for two cryptosystems, e.g. for a 
public-key encryption system and for a public-key signature system, does not 
compromise their security. We demonstrate this for a variety of public-key encry ... 

3 Password Management and Digital Signatures: Delegation of cryptographic servers B 

for capture 
^ Philip MacKenzie, Michael K. Reiter 

November 2001 Proceedings of the 8th ACM conference on Computer and 
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Full text available: m pdfi312.90 KB) 

1823 terms 

A device that performs private key operations (signatures or decryptions), and whose 
private key operations are protected by a password, can be immunized against offline 
dictionary attacks in case of capture by forcing the device to confirm a password guess 
with a designated remote server in order to perform a private key operation. Recent 
proposals for achieving this allow untrusted servers and require no server initialization per 
device. In this paper we extend these proposals to enable dynami ... 

4 Secret key distribution protocoi using public key cryptography 
Amit Parnerkar, Dennis Guster, Jayantha Herath 

October 2003 Journal of Computing Sciences in Colleges, volume 19 issue l 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: 'P )pdfi74.93 KB) Additional Information: full citation , abstract, references , j pdex terms 



This paper presents the description and analysis of a protocol, which uses hybrid crypto 
algorithms for key distribution. A triple DES with a 168-bit key is used to generate the 
secret key. This secret key is transferred with the help of public key cryptography. The 
authentication process is accomplished by using the message digest algorithm MD5. This 
protocol uses mutual authentication in which, both participants have to authenticate 
themselves via a third trusted certificate authority (CA). Th ... 

Authenticat io n and s ignature schemes: On the perfo rm an ce , feasibility, and use of 
forward-secure signatures 

Eric Cronin, Sugih Jamin, Tal Malkin, Patrick McDaniel 

October 2003 Proceedings of the 10th ACM conference on Computer and 

communications security 
Publisher: ACM Press 

Full text available: f || sdff3S6.51 KB) Additional Information: full citation, abstract, references, index terms 



Forward-secure signatures (FSSs) have recently received much attention from the 
cryptographic theory community as a potentially realistic way to mitigate many of the 
difficulties digital signatures face with key exposure. However, no previous works have 
explored the practical performance of these proposed constructions in real-world 
applications, nor have they compared FSS to traditional, non-forward-secure, signatures 
in a non-asymptotic way. We present an empirical evaluation of several FSS sch ... 

Keywords: digital signatures, forward-secure signatures 
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7 SPV: secure path vector routing for securing BGP H 

#Yih-Chun Hu, Adrian Perrig, Marvin Sirbu 
August 2004 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2004 conference on Applications, technologies, architectures, and 
protocols for computer communications SIGCOMM '04, volume 34 issue 4 
Publisher: ACM Press 
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Full text available: ^.pdJ[238 t 82.KBl Additional Information: M.Pftation, abstract, references, .index terrns 

As our economy and critical infrastructure increasingly relies on the Internet, the 
insecurity of the underlying border gateway routing protocol (BGP) stands out as the 
Achilles heel. Recent misconfigurations and attacks have demonstrated the brittleness of 
BGP. Securing BGP has become a priority.In this paper, we focus on a viable deployment 
path to secure BGP. We analyze security requirements, and consider tradeoffs of 
mechanisms that achieve the requirements. In particular, we study how to se ... 

Keywords: BGP, Border Gateway Protocol, interdomain routing, routing, security 



8 Some facets of complexity th e ory and cryptography: A five-lecture tutorial 
^ Jorg Rothe 

" December 2002 ACM Computing Surveys (CSUR), volume 34 issue 4 
Publisher: ACM Press 

Additional Information: Mcitatjon, abstract, references, citings, index 



Full text available: ' ........... ~ 

«^ terms , review 

In this tutorial, selected topics of cryptology and of computational complexity theory are 
presented. We give a brief overview of the history and the foundations of classical 
cryptography, and then move on to modern public-key cryptography. Particular attention 
is paid to cryptographic protocols and the problem of constructing key components of 
protocols such as one-way functions. A function is one-way if it is easy to compute, but 
hard to invert. We discuss the notion of one-way functions both ... 

Keywords: Complexity theory, interactive proof systems, one-way functions, public-key 
cryptography, zero-knowledge protocols 
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June 2004 ACM SIGARCH Computer Architecture News, volume 32 issue 3 

Publisher: ACM Press 

Full text available: Qpd.fi22ZJQ.KBJ Additional Information: Meltatjon, absbafit reMesces 

Elliptic Curve Cryptography (ECC) is emerging as an attractive public-key system for 
constrained environments, because of the small key sizes and computational efficiency, 
while preserving the same security level as the standard methodsWe have developed a 
set of benchmarks to compare standard and corresponding elliptic curve public-key 
methods. An embedded device based on the Intel XScale architecture, which utilizes an 
ARM processor core was modeled and used for studying the benchmark performan ... 

10 Introduction of the asymmetric cryptography in GSM. GPRS, UMTS, and its public Q 
key infrastructure integration 

Constantinos F. Grecas, Sotirios I. Maniatis, Iakovos S. Venieris 
April 2003 Mobile Networks and Applications, volume 8 issue 2 
Publisher: Kluwer Academic Publishers 

Full text available: ■g jodfM 07.24 KB] Additional Information: full citation, abstract, references, index terms 

The logic ruling the user and network authentication as well as the data ciphering in the 
GSM architecture is characterized, regarding the transferring of the parameters employed 
in these processes, by transactions between three nodes of the system, that is the MS, 
actually the SIM, the visited MSC/VLR, and the AuC, which is attached to the HLR in most 
cases. The GPRS and the UMTS architecture carry the heritage of the GSM's philosophy 
regarding the user/network authentication and the data ciphe ... 
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11 Constructing fair-exchange protocols for E-commerce via distributed computation of Q 

RSA signatures 
^ Jung Min Park, Edwin K. P. Chong, Howard Jay Siegel 

July 2003 Proceedings of the twenty-second annual symposium on Principles of 

distributed computing 
Publisher: ACM Press 

Full text available: mpdfC103 MB) Additional ,nformation: Motion, abstract, references, citings, index 

terms, review 

Applications such as e-commerce payment protocols, electronic contract signing, and 
certified e-mail delivery require that fair exchange be assured. A fair-exchange protocol 
allows two parties to exchange items in a fair way so that either each party gets the 
other's item, or neither party does. We describe a novel method of constructing very 
efficient fair-exchange protocols by distributing the computation of RSA signatures. 
Specifically, we employ multisignatures based on the RSA-signature sch ... 

Keywords: Fair-exchange protocols, RSA signatures, e-commerce, multisignatures, zero- 
knowledge proofs 
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" November 2001 ACM Transactions on Information and System Security (TISSEC), 

Volume 4 Issue 4 

Publisher: ACM Press 

Additional Information: MLsiMlon, abstract, references, citings, index 



Full text available: \_ ^ 
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Public key management has received considerable attention from both the research and 
commercial communities as a useful primitive for secure electronic commerce and secure 
communication. While the mechanics of certifying and revoking public keys and escrowing 
and recovering private keys have been widely explored, less attention has been paid to 
access control frameworks for regulating access to stored keys by different parties. In this 
article we propose such a framework for a key management ser ... 

Keywords: Access control, authorizations specification and enforcement, public key 
infrastructure 
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We present a new approach for fine-grained control over users' security privileges (fast 
revocation of credentials) centered around the concept of an on-line semi-trusted 
mediator (SEM). The use of a SEM in conjunction with a simple threshold variant of the 
RSA cryptosystem (mediated RSA) offers a number of practical advantages over current 
revocation techniques. The benefits include simplified validation of digital signatures, 
efficient certificate revocation for legacy systems and fast revocat ... 

Keywords: Certificate Revocation, Digital Signatures, Public Key Infrastructure 



15 Efficient verifiable encryption (and fair exchange) of digital signatures 
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^ November 1999 Proceedings of the 6th ACM conference on Computer and 
communications security 
Publisher: ACM Press 

Additional Information: fujl.cltatjpn, abstract, references, citings, index 



Full text available: WL pdf(781 .AO KB) 

m terms 

A fair exchange protocol allows two users to exchange items so that either each user gets 
the other's item or neither user does. In [2], verifiable encryption is introduced as a 
primitive that can be used to build extremely efficient fair exchange protocols where the 
items exchanged represent digital signatures. Such protocols may be used to digitally sign 
contracts.This paper presents new simple schemes for verifiable encryption of digital 
signatures. We make us ... 

Keywords: contract signing problem, digital signatures, fair exchange, proof of 
knowledge, public-key cryptography, verifiable encryption 
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S«£ February 2004 ACM Transactions on Information and System Security (TISSEC), volume 

7 Issue 1 

Publisher: ACM Press 

Full text available: |||p_df{25& J.2.KBJ Additional Information: Mlcitatjon, abstract, references, index terms 

This paper presents a new simple schemes for verifiable encryption of digital signatures. 
We make use of a trusted third party (TTP) but in an optimistic sense, that is, the TTP 
takes part in the protocol only if one user cheats or simply crashes. Our schemes can be 
used as primitives to build efficient fair exchange and certified e-mail protocols. 

Keywords: Certified e-mail, contract signing, digital signatures, fair exchange, proof of 
knowledge, public-key cryptography 
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Certification is a common mechanism for authentic public key distribution. In order to 
obtain a public key, verifiers need to extract a certificate path from a network of 
certificates, which is called public key infrastructure (PKI), and verify the certificates on 
this path recursively. This is classical methodology. Nested certification is a novel 
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methodology for efficient certificate path verification. Basic idea is to issue special 
certificates (called nested certificates) for other certifica ... 

Keywords: Digital certificates, key management, nested certificates, public key 
infrastructure 
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